Openvpn over IPV6

1,Settings
Starting officially in the 2.3.0 release, OpenVPN supports IPv6 inside the tunnel, and can optionally be configured with IPv6 as a transport protocol for the tunneled data.
To connect to your server over ipv6 (ipv6 transport) use this on both sides:(Both ipv4 and ipv6 will be supported)
proto udp6

2,build client keys
On client :
$sudo apt-get install openvpn
$sudo openvpn –config /path/to/config.ovpn

how to add another client cert in openvpn
assuming you have vars ca.key ca.crt index.txt serial.txt and the rest of files you do
#source ./vars
#./build-key client
DONT do clean-all..

3,Setting up client
The files that need to be securely copied to the client’s /etc/openvpn directory are:
/etc/openvpn/ca.crt
/etc/openvpn/server.key
/etc/openvpn/easy-rsa/keys/client.crt
/etc/openvpn/easy-rsa/keys/client.key

setting owner to be root and mode 600 to key files and 644 to crt files

sudo cp /usr/share/doc/openvpn/examples/sample-config-files/client.conf /etc/openvpn
Open up /etc/openvpn/client.conf with a text editor (such as Nano or vi) and take a look at the following section:

dev tun
remote vpn.server.com 1194 #change to your server’s FQDN
cert client.crt
key client.key
ns-cert-type server
#tls-auth ta.key 1

sudo /etc/init.d/openvpn restart

发表评论

电子邮件地址不会被公开。 必填项已用*标注